CVE-2011-1280

🗓️ 16 Jun 2011 20:55:02Reported by [email protected]Type

The XML Editor in Microsoft InfoPath & SQL Server vulnerable to file read via crafted .disco fil

Reporter	Title	Published	Views	Family All 12
Check Point Advisories	Microsoft XML Editor Crafted Entity Information Disclosure (MS11-049; CVE-2011-1280)	9 Jun 201100:00	–	checkpoint_advisories
CVE	CVE-2011-1280	16 Jun 201120:21	–	cve
Cvelist	CVE-2011-1280	16 Jun 201120:21	–	cvelist
Microsoft KB	KB2543893 - MS11-049: Vulnerability in the Microsoft XML Editor could allow information disclosure: June 14, 2011	14 Jun 201100:00	–	mskb
OpenVAS	Microsoft XML Editor Information Disclosure Vulnerability (2543893)	21 Jun 201100:00	–	openvas
OpenVAS	Microsoft XML Editor Information Disclosure Vulnerability (2543893)	21 Jun 201100:00	–	openvas
Prion	Xxe	16 Jun 201120:55	–	prion
securityvulns	Microsoft XML Editor information leakage	15 Jun 201100:00	–	securityvulns
Tenable Nessus	MS11-049: Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure (2543893) (uncredentialed check)	10 Mar 201400:00	–	nessus
Tenable Nessus	MS11-049: Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure (2543893)	15 Jun 201100:00	–	nessus

NVD

Node

microsoft sql_serverMatch2005sp3express

microsoft sql_serverMatch2005sp3express_advanced_services

microsoft sql_serverMatch2005sp3itanium

microsoft sql_serverMatch2005sp4express

microsoft sql_serverMatch2005sp4express_advanced_services

microsoft sql_serverMatch2005sp4itanium

microsoft sql_serverMatch2008sp1itanium

microsoft sql_serverMatch2008sp2itanium

Source	Link
securityfocus	www.securityfocus.com/bid/48196
securitytracker	www.securitytracker.com/id
oval	www.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12664
securitytracker	www.securitytracker.com/id
securitytracker	www.securitytracker.com/id
secunia	www.secunia.com/advisories/44912
docs	www.docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-049